Symantec Critical System Manuel D’Utilisation

116 Migrating to the latest version

Migrating legacy detection policy files

For rules that need to be changed, on the Rules tab, right-click the rule and
then select the correct conversion menu item.

Verify that all other criteria, actions, and values are correctly set for your
rules.

Click Tools > Validate.
If an error prompt appears, troubleshoot the error.

Configuring an option group

By configuring an option group for your policy, you can view your migrated
rules when you display the policy in the management console. When you view
the rules in the management console, you can also enable and disable the rules.
If you do not configure an option group for your converted policy, you cannot
view your migrated rules when you display the policy in the management
console. Also, the migrated rules retain their original, pre-migrated enabled or
disabled value. Configuring option groups is optional.

To use option groups, you must remove all spaces in rule names because you
must type your rule using the format

RuleSetName.RuleName

with no spaces.

You should also validate your policies after configuring option groups.

See the Symantec Critical System Protection Policy Authoring Guide for details on
how to configure an option group for detection policies.

Compiling a policy

Once you verify that your rules are properly migrated, you are ready to compile
your policy.

To compile a policy

On the Library tab, select your new policy, and then click the Compile icon.

Expand the folder that contains your policy.
The red policy icon indicates a compiled policy.